Pwnzzz 💀's repositories
ntlmquic
POC tools for exploring SMB over QUIC protocol
Blacklist3r
project-blacklist3r
unhook-bof
Remove API hooks from a Beacon process.
FuzzQRCodeUNIPD
QR Code Fuzzer Toolkit for Green Pass Checkers - Computer & Network Security Course @ UniPD
conti_locker
Conti Locker source code
TokenStomp
C# implementation of the token privilege removal flaw discovered by @GabrielLandau/Elastic
z0mbie.host.sk
reconstruct z0mbie's homepage from 2005
SpoolFool
Exploit for CVE-2022-21999 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE)
esmat
macOS Endpoint Security Message Analysis Tool
ICMP-TransferTools
Transfer files to and from a Windows host via ICMP in restricted network environments.
TartarusGate
TartarusGate, Bypassing EDRs
DetectWindowsCopyOnWriteForAPI
Enumerate various traits from Windows processes as an aid to threat hunting
PSByPassCLM
Bypass for PowerShell Constrained Language Mode
ioctlpus
IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
WindowsExploitationResources
Resources for Windows exploit development
StormKitty
:key: Stealer written on C#, logs will be sent to Telegram bot.
cs_aggressor_script_examples
This repository contains tips, tricks, and examples of aggressor script functions. The intent is to share bite size examples that can be used in other scripts.
RpcSsImpersonator
Privilege Escalation Via RpcSs svc
SharpLigolo
C# wrapper for ligolo
VXUG-Papers
Research code & papers from members of vx-underground.
redis-rce
Redis 4.x/5.x RCE
aclpwn.py
Active Directory ACL exploitation with BloodHound
ExternalC2.NET
.NET implementation of Cobalt Strike's External C2 Spec
pafish
Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
pkcrack
pkcrack with modern building tools
SubdomainEnum
Bash wrapper for multiple subdomain enumeration scripts
DS_Walk
Python tool for enumerating directories and files on web servers that contain a publicly readable .ds_store file.
DarkLoadLibrary
LoadLibrary for offensive operations
PrintNightmare
Python implementation for PrintNightmare (CVE-2021-1675 / CVE-2021-34527)